Уязвимость CVE-2015-4047: Информация

Описание

racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.

Важность: HIGH (7,8)

Исправленные пакеты

Ссылки на рекомендации, решения и инструменты

1. Подверженные конфигурации:

   1. Конфигурация 1

      cpe:2.3:a:ipsec-tools:ipsec-tools:0.8.2:*:*:*:*:*:*:*

      ---

      Конфигурация 2

      cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

      ---

      Конфигурация 3

      cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*

      ---

      Конфигурация 4

      cpe:2.3:a:f5:big-ip_application_acceleration_manager:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

      Start including

      11.4.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 5

      cpe:2.3:a:f5:big-ip_local_traffic_manager:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 6

      cpe:2.3:a:f5:big-ip_advanced_firewall_manager:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

      Start including

      11.3.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 7

      cpe:2.3:a:f5:big-ip_analytics:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 8

      cpe:2.3:a:f5:big-ip_access_policy_manager:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 9

      cpe:2.3:a:f5:big-ip_application_security_manager:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 10

      cpe:2.3:a:f5:big-ip_domain_name_system:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 11

      cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.3.0

      ---

      cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.6.4

      ---

      Конфигурация 12

      cpe:2.3:a:f5:big-ip_link_controller:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 13

      cpe:2.3:a:f5:big-ip_policy_enforcement_manager:13.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

      Start including

      11.3.0

      End including

      11.6.4

      ---

      cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*

      Start including

      12.0.0

      End including

      12.1.4

      ---

      Конфигурация 14

      cpe:2.3:a:f5:big-iq_centralized_management:4.6.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-iq_adc:4.5.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-iq_cloud_and_orchestration:1.0.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.3.0

      ---

      cpe:2.3:a:f5:big-ip_wan_optimization_manager:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.3.0

      ---

      cpe:2.3:a:f5:big-iq_security:*:*:*:*:*:*:*:*

      Start including

      4.0.0

      End including

      4.5.0

      ---

      cpe:2.3:a:f5:big-iq_device:*:*:*:*:*:*:*:*

      Start including

      4.2.0

      End including

      4.5.0

      ---

      cpe:2.3:a:f5:big-iq_cloud:*:*:*:*:*:*:*:*

      Start including

      4.0.0

      End including

      4.5.0

      ---

      cpe:2.3:a:f5:enterprise_manager:*:*:*:*:*:*:*:*

      Start including

      3.0.0

      End including

      3.1.1

      ---

      cpe:2.3:a:f5:big-ip_protocol_security_manager:*:*:*:*:*:*:*:*

      Start including

      11.0.0

      End including

      11.4.1

      ---

      Конфигурация 15

      cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

      ---